Why you should adopt the NIST Cybersecurity Framework

May 2014

At a glance

The NIST Cybersecurity Framework, which was drafted by the Commerce Department’s National Institute of Standards and Technology (NIST), yields no surprises for critical infrastructure executives who have followed its development. The Framework represents a tipping point in the evolution of cybersecurity, one in which the balance is shifting to proactive risk-management standards. While the Framework is voluntary, organizations across industries may gain significant benefits by adopting the guidelines. This paper outlines the primary components of the NIST Cybersecurity Framework as well as the pros and cons for early adopters.